Vulnerabilities > CVE-2008-2579

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

Unspecified vulnerability in the WebLogic Server Plugins for Apache, Sun and IIS web servers component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 has unknown impact and remote attack vectors.

Nessus

NASL familyWeb Servers
NASL idWEBLOGIC_2008_2579.NASL
descriptionAccording to its self-reported banner, the version of Oracle WebLogic Server running on the remote host may be affected by an unspecified remote vulnerability. Note that this issue affects the WebLogic plug-ins for Apache, Sun and IIS Web included with WebLogic Server and is only exploitable if one or more of those is installed elsewhere.
last seen2020-06-01
modified2020-06-02
plugin id17734
published2011-11-30
reporterThis script is Copyright (C) 2011-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/17734
titleOracle WebLogic Plugins Unspecified Remote Issue (CVE-2008-2579)
code
#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if(description)
{
  script_id(17734);
  script_version("1.5");
  script_cvs_date("Date: 2018/11/15 20:50:26");

  script_cve_id("CVE-2008-2579");

  script_name(english:"Oracle WebLogic Plugins Unspecified Remote Issue (CVE-2008-2579)");
  script_summary(english:"Checks the version of Oracle WebLogic");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote Oracle WebLogic Server may be affected by an unspecified
remote vulnerability."
  );
  script_set_attribute(
    attribute:"description",
    value:
"According to its self-reported banner, the version of Oracle WebLogic
Server running on the remote host may be affected by an unspecified
remote vulnerability. 

Note that this issue affects the WebLogic plug-ins for Apache, Sun and
IIS Web included with WebLogic Server and is only exploitable if one
or more of those is installed elsewhere."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.oracle.com/technetwork/topics/security/2785-088160.html"
  );
  script_set_attribute(
    attribute:"solution",
    value:"Follow the advice in Oracle's advisory to upgrade the plug-ins."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"vuln_publication_date", value:"2008/07/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2008/07/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/11/30");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:bea:weblogic_server");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:weblogic_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Web Servers");

  script_copyright(english:"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.");
   
  script_dependencies("weblogic_detect.nasl");
  script_require_keys("www/weblogic");
  script_require_ports("Services/www", 80, 7001);

  exit(0);
}

include("global_settings.inc");
include("misc_func.inc");
include("http.inc");

port = get_http_port(default:7001);

get_kb_item_or_exit("www/weblogic/" + port + "/installed");

if (!get_kb_item("Settings/PCI_DSS")) exit(0, "PCI-DSS compliance checking is not enabled.");

version = get_kb_item_or_exit("www/weblogic/" + port + "/version", exit_code:1);
service_pack = get_kb_item("www/weblogic/" + port + "/service_pack");

if (isnull(service_pack)) version_ui = version;
else version_ui = version + ' ' + service_pack;

if ( 
  (version == "7.0" && (isnull(service_pack) || service_pack =~ "^SP[1-7]$")) ||
  (version == "8.1" && (isnull(service_pack) || service_pack =~ "^SP[1-6]$")) ||
  (version =~ "^9\.[0-1]$" && isnull(service_pack)) ||
  (version == "9.2" && (isnull(service_pack) || service_pack =~ "^MP[1-3]$")) ||
  (version == "10.0" && (isnull(service_pack) || service_pack == "MP1"))
)
{
  if (report_verbosity > 0) 
  {
    source = get_kb_item_or_exit("www/weblogic/" + port + "/source", exit_code:1);
    report =
      '\n  Source            : ' + source +
      '\n  Installed version : ' + version_ui +
      '\n';
    security_warning(port:port, extra:report);
  }
  else security_warning(port);
  exit(0);
}
else exit(0, "The Oracle WebLogic "+version_ui+" install listening on port "+port+" is not affected.");